Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-28 | CVE-2024-4555 | Improper Privilege Management vulnerability in Microfocus Netiq Access Manager 5.0.2 Improper Privilege Management vulnerability in OpenText NetIQ Access Manager allows user account impersonation in specific scenario. This issue affects NetIQ Access Manager before 5.0.4.1 and before 5.1 | 7.5 |
| 2024-06-13 | CVE-2024-32918 | Improper Privilege Management vulnerability in Google Android Permission Bypass allowing attackers to disable HDCP 2.2 encryption by not completing the HDCP Key Exchange initialization steps | 6.1 |
| 2024-06-12 | CVE-2024-5909 | Improper Privilege Management vulnerability in Paloaltonetworks Cortex XDR Agent A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices allows a low privileged local Windows user to disable the agent. | 5.5 |
| 2024-06-12 | CVE-2024-5759 | Improper Privilege Management vulnerability in Tenable Security Center 6.3.0 An improper privilege management vulnerability exists in Tenable Security Center where an authenticated, remote attacker could view unauthorized objects and launch scans without having the required privileges | 6.3 |
| 2024-05-17 | CVE-2024-22145 | Improper Privilege Management vulnerability in Instawp Connect Improper Privilege Management vulnerability in InstaWP Team InstaWP Connect allows Privilege Escalation.This issue affects InstaWP Connect: from n/a through 0.1.0.8. | 8.8 |
| 2024-04-25 | CVE-2024-28241 | Improper Privilege Management vulnerability in Glpi-Project Glpi Agent The GLPI Agent is a generic management agent. | 7.8 |
| 2024-03-06 | CVE-2023-38944 | Improper Privilege Management vulnerability in Multilaser Re160V Firmware and Re163V Firmware An issue in Multilaser RE160V firmware v12.03.01.09_pt and Multilaser RE163V firmware v12.03.01.10_pt allows attackers to bypass the access control and gain complete access to the application via modifying a HTTP header. | 9.8 |
| 2024-02-08 | CVE-2024-22795 | Improper Privilege Management vulnerability in Forescout Secureconnector 11.3.06.0063 Insecure Permissions vulnerability in Forescout SecureConnector v.11.3.06.0063 allows a local attacker to escalate privileges via the Recheck Compliance Status component. | 7.0 |
| 2024-02-08 | CVE-2024-23764 | Improper Privilege Management vulnerability in Withsecure products Certain WithSecure products allow Local Privilege Escalation. | 6.7 |
| 2024-02-06 | CVE-2024-22237 | Improper Privilege Management vulnerability in VMWare Aria Operations for Networks Aria Operations for Networks contains a local privilege escalation vulnerability. A console user with access to Aria Operations for Networks may exploit this vulnerability to escalate privileges to gain root access to the system. | 7.8 |